Configuration & Settings

Learn to configure Claude Code for your workflow, from managing permissions and authentication to setting up project-specific configurations. This guide covers both personal preferences and team-wide settings.

Configuration Hierarchy

Claude Code uses a hierarchical configuration system that allows flexibility while maintaining consistency:

Settings Precedence (Highest to Lowest)

1. Enterprise Policies - Managed by IT administrators
2. Command Line Arguments - Override for specific sessions
3. Local Project Settings - .claude/settings.local.json
4. Shared Project Settings - .claude/settings.json
5. User Settings - ~/.claude/settings.json

Quick Configuration

1. Interactive configuration

   claude /config

2. List current settings

   claude config list

3. Set a specific value

   claude config set model claude-sonnet-4
   claude config set autoUpdates false --global

4. View a setting

   claude config get model

Settings Files

User Settings

Global preferences that apply to all projects:

~/.claude/settings.json

// ~/.claude/settings.json
{
"model": "claude-opus-4",
"theme": "dark",
"autoUpdates": true,
"env": {
  "EDITOR": "code",
  "NODE_ENV": "development"
},
"permissions": {
  "defaultMode": "acceptEdits",
  "allow": [
    "Edit",
    "Bash(git:*)",
    "Bash(npm run:*)"
  ]
}
}

Project Settings

Team-shared configuration checked into version control:

.claude/settings.json

// .claude/settings.json
{
"model": "claude-sonnet-4",
"maxTurns": 20,
"allowedTools": [
  "Edit",
  "View",
  "Bash(npm:*)",
  "mcp__github__*"
],
"env": {
  "API_ENDPOINT": "https://staging.api.company.com"
},
"permissions": {
  "additionalDirectories": [
    "../shared-lib",
    "../api-contracts"
  ]
},
"hooks": {
  "PreToolUse": {
    "Edit": "npm run lint-staged"
  }
}
}

Local Project Settings

Personal overrides not checked into version control:

.claude/settings.local.json

// .claude/settings.local.json
{
"env": {
  "API_KEY": "your-personal-dev-key"
},
"permissions": {
  "defaultMode": "bypassPermissions"
}
}

Tip

Claude Code automatically adds .claude/settings.local.json to .gitignore when created.

Permission Management

Permission Modes

Default Mode

Standard behavior - prompts for permission on first use of each tool:

claude --permission-mode default

Good for: New projects, unfamiliar codebases

Accept Edits

Automatically accepts file edit permissions for the session:

claude --permission-mode acceptEdits

Good for: Active development, trusted projects

Plan Mode

Read-only analysis without modifications:

claude --permission-mode plan

Good for: Code reviews, architecture analysis

Bypass Permissions

Skip all permission prompts (use with caution):

claude --dangerously-skip-permissions
# or
claude --permission-mode bypassPermissions

Good for: Personal projects, automation scripts

Managing Allowed Tools

1. Interactive management

   claude /permissions

2. Allow specific tools

   {
     "permissions": {
       "allow": [
         "Edit",                    // All file edits
         "Bash(git:*)",            // All git commands
         "Bash(npm run test:*)",   // Specific npm scripts
         "Read(~/.zshrc)",         // Read specific files
         "mcp__github__*"          // All GitHub MCP tools
       ]
     }
   }

3. Deny dangerous operations

   {
     "permissions": {
       "deny": [
         "Bash(rm -rf:*)",         // Prevent deletions
         "Bash(curl:*)",           // Block external requests
         "Edit(/etc/**)"           // Protect system files
       ]
     }
   }

Tool-Specific Rules

Permission Rule Patterns

Tool	Pattern	Example
Bash	Bash(command:*)	Bash(npm run:*)
Edit	Edit(path/pattern)	Edit(src/**)
Read	Read(path/pattern)	Read(~/.ssh/*)
WebFetch	WebFetch(domain:example.com)	WebFetch(domain:api.company.com)
MCP	mcp__server__tool	mcp__github__create_issue

Environment Variables

Configuration via Settings

Set environment variables that persist across sessions:

{
"env": {
  // Development settings
  "NODE_ENV": "development",
  "DEBUG": "app:*",

  // API configuration
  "API_BASE_URL": "https://staging.api.com",
  "TIMEOUT": "30000",

  // Tool configuration
  "EDITOR": "code",
  "PAGER": "less"
}
}

Runtime Environment Variables

Override settings for specific sessions:

# Authentication
export ANTHROPIC_API_KEY="sk-ant-..."
export ANTHROPIC_AUTH_TOKEN="Bearer token..."

# Model selection
export ANTHROPIC_MODEL="claude-opus-4"
export ANTHROPIC_SMALL_FAST_MODEL="claude-haiku-3"

# Proxy configuration
export HTTPS_PROXY="https://proxy.company.com:8080"
export NODE_TLS_REJECT_UNAUTHORIZED=0  # Self-signed certs

# Behavior tweaks
export BASH_MAX_TIMEOUT_MS=300000  # 5 minutes
export DISABLE_PROMPT_CACHING=1
export DISABLE_INTERLEAVED_THINKING=1

Model Configuration

Selecting Models

Via Settings

{
  "model": "claude-opus-4",
  "smallFastModel": "claude-haiku-3"
}

Via Environment

export ANTHROPIC_MODEL="claude-sonnet-4"
export ANTHROPIC_SMALL_FAST_MODEL="claude-haiku-3"

Via Command Line

claude --model opus
claude --model claude-sonnet-4-20250514

Note

Claude Code automatically uses the small/fast model for background tasks like file scanning to reduce costs.

Working Directories

Extend Claude’s file access beyond the launch directory:

1. During startup

   claude --add-dir ../backend ../shared

2. During session

   /add-dir ../documentation

3. Persistent configuration

   {
     "permissions": {
       "additionalDirectories": [
         "../api",
         "../shared-components",
         "~/templates"
       ]
     }
   }

Enterprise Configuration

Managed Policy Settings

IT administrators can enforce organization-wide settings:

managed-settings.json

// /etc/claude-code/managed-settings.json (Linux/WSL)
// /Library/Application Support/ClaudeCode/managed-settings.json (macOS)
// C:\ProgramData\ClaudeCode\managed-settings.json (Windows)

{
"permissions": {
  "deny": [
    "Bash(rm -rf:*)",
    "WebFetch(domain:competitor.com)"
  ],
  "disableBypassPermissionsMode": "disable"
},
"env": {
  "CORPORATE_PROXY": "proxy.company.com:8080",
  "CLAUDE_CODE_ENABLE_TELEMETRY": "0"
},
"forceLoginMethod": "console",
"model": "claude-sonnet-4"
}

API Key Management

For enterprise deployments with rotating credentials:

1. Create key helper script

   ~/bin/get-api-key.sh

   #!/bin/bash
   # Fetch from vault
   vault kv get -field=api_key secret/claude-code
   
   # Or from AWS Secrets Manager
   aws secretsmanager get-secret-value \
     --secret-id claude-code-api-key \
     --query SecretString --output text

2. Configure Claude Code

   {
     "apiKeyHelper": "~/bin/get-api-key.sh"
   }

3. Set refresh interval

   export CLAUDE_CODE_API_KEY_HELPER_TTL_MS=3600000  # 1 hour

Advanced Settings

Hooks Configuration

Automate workflows with pre/post tool hooks:

{
"hooks": {
  "PreToolUse": {
    "Edit": "npm run pre-edit-checks",
    "Bash": "echo 'Executing: $COMMAND'"
  },
  "PostToolUse": {
    "Edit": "npm run format",
    "MultiEdit": "git add -A"
  }
}
}

Custom Slash Commands

Create reusable commands in .claude/commands/:

.claude/commands/test-component.md

---
name: test-component
description: Run tests for a React component
---

npm test -- --testNamePattern="$ARGUMENTS" --coverage

MCP Server Configuration

Configure Model Context Protocol servers:

.mcp.json

{
"mcpServers": {
  "github": {
    "command": "npx",
    "args": ["-y", "@modelcontextprotocol/server-github"],
    "env": {
      "GITHUB_TOKEN": "${GITHUB_TOKEN}"
    }
  },
  "postgres": {
    "command": "npx",
    "args": [
      "-y",
      "@modelcontextprotocol/server-postgres",
      "postgresql://localhost/mydb"
    ]
  }
}
}

Troubleshooting Configuration

Common Issues

Settings Not Applied

Check precedence order:

# View effective settings
claude config list

# Check which file is being used
claude config get model -v

Permission Denied

Ensure proper file permissions:

# Fix user settings
chmod 600 ~/.claude/settings.json

# Fix project settings
chmod 644 .claude/settings.json

Invalid JSON

Validate your settings files:

# Use Claude's built-in validator
claude /doctor

# Or validate manually
jq . ~/.claude/settings.json

Best Practices

Configuration Tips

1. Start with defaults - Only override what you need
2. Use project settings - Share common configurations with your team
3. Keep secrets local - Use .claude/settings.local.json for API keys
4. Document custom settings - Add comments in your CLAUDE.md
5. Review permissions regularly - Audit allowed tools periodically
6. Use environment variables - For temporary overrides
7. Leverage hooks - Automate repetitive tasks
8. Test configurations - Verify settings work across team members

Next Steps

Initialize Your First Project Create a CLAUDE.md file and set up project context

IDE Integration Connect Claude Code with your favorite editor

Configuration Reference

Setting	Type	Scope	Description
model	string	All	Primary model selection
autoUpdates	boolean	Global	Enable auto-updates
theme	string	Global	UI theme (dark/light)
permissions	object	All	Permission rules
env	object	All	Environment variables
hooks	object	All	Tool execution hooks
allowedTools	array	All	Permitted tools list
additionalDirectories	array	All	Extra working directories
cleanupPeriodDays	number	All	Chat history retention